Usually the phase 2 subnets are different with site-to-site IPSEC tunnels. When the subnets are the same on both ends, 1:1 NAT should be used…
Okta started offering MFA for free when using Palo Alto Networks applications such as GlobalProtect, CaptivePortal, Admin UI and even Active Directory. Previously you were…
In previous posts we’ve explained the use case of virtual wire interfaces and configured a basic virtual wire deployment and with VLAN subinterfaces. NAT might…
Inter-VLAN routing is simply routing traffic between one or more broadcast domains. Without the addition of a router, there’s no way to get traffic from…
Splunk is a log aggregator and analyzer collecting logs from different sources to present those in a dashboard fashion for visibility. Inspecting traffic logs on…
The “interface-less” mode is when static routes are used and the interface isn’t configured with an IPv4 address because it isn’t mandatory to establish a…
GlobalProtect Satellite allows you to quickly deploy site-to-site tunnels in a matter of seconds. It simplifies the deployment process because there isn’t a lot to…
The primary purpose of User-ID literally is just mapping users to an IP address, defining policies based on user credentials and identifying users through monitor…
Palo Alto Network’s WildFire Analysis Engine protects your organization from unknown threats by sending a sample of the file to the WildFire cloud for inspection.…
In a previous post, we’ve configured a basic Virtual Wire deployment but you should realize that you’ll eventually run out of physical interfaces to add…
A virtual wire interface makes it very easy to deploy Palo Alto’s NGFW in an existing network because it doesn’t require you to change any…
Imagine the hassle when a particular user has to login multiple times a day and remember different login & passwords throughout a ton of services…